metasploit | f450a953e6ece40fc0ae78bc361c0aaf54038690db22bdc2b8608a72e6466663 | Triage

Submit
Reports

Overview

overview

Static

static

8

f450a953e6...63.doc

windows7-x64

f450a953e6...63.doc

windows10-2004-x64

1

Sharing

General

Target

f450a953e6ece40fc0ae78bc361c0aaf54038690db22bdc2b8608a72e6466663
Size

36KB
Sample

240627-1enxcavbpn
MD5

0e6e3300942d870111a63a58ec64fb46
SHA1

3af3c237f928aae0c5af7aa130234f551c060e98
SHA256

f450a953e6ece40fc0ae78bc361c0aaf54038690db22bdc2b8608a72e6466663
SHA512

7afb7467b2a61ca8e545570e74caadd94ca0c42764b958664af6a245825d8dc787254867f5e6a3f6db9394369120bf5874382075418cc5d9f63883c586c94ba4
SSDEEP

384:0iSsqdg1vA92TLVUG+PDA0jmH1HA/YFZDWutE/:M+1o98C0lg/YFZDW

Score

10^/10

metasploit backdoor macro macro_on_action trojan

Static task

static1

macro macro_on_action

2 signatures

Behavioral task

behavioral1

Sample

f450a953e6ece40fc0ae78bc361c0aaf54038690db22bdc2b8608a72e6466663.doc

Resource

win7-20240611-en

metasploit backdoor trojan

windows7-x64

8 signatures

60 seconds

Behavioral task

behavioral2

Sample

f450a953e6ece40fc0ae78bc361c0aaf54038690db22bdc2b8608a72e6466663.doc

Resource

win10v2004-20240508-en

windows10-2004-x64

4 signatures

60 seconds

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_http

C2

http://192.168.45.208:443/i7icE0_nS8KkMqUzwk_20gv1OaXJpuIqVbVYm9SdUEDLP

Targets

- Target
  
  f450a953e6ece40fc0ae78bc361c0aaf54038690db22bdc2b8608a72e6466663
- Size
  
  36KB
- MD5
  
  0e6e3300942d870111a63a58ec64fb46
- SHA1
  
  3af3c237f928aae0c5af7aa130234f551c060e98
- SHA256
  
  f450a953e6ece40fc0ae78bc361c0aaf54038690db22bdc2b8608a72e6466663
- SHA512
  
  7afb7467b2a61ca8e545570e74caadd94ca0c42764b958664af6a245825d8dc787254867f5e6a3f6db9394369120bf5874382075418cc5d9f63883c586c94ba4
- SSDEEP
  
  384:0iSsqdg1vA92TLVUG+PDA0jmH1HA/YFZDWutE/:M+1o98C0lg/YFZDW
Score

10^/10

metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

macromacro_on_action

behavioral1

metasploitbackdoortrojan

behavioral2

© 2018-2024

Terms | Privacy